diff options
| author | Michael Boric <[email protected]> | 2019-10-02 15:48:47 +0200 |
|---|---|---|
| committer | Michael Boric <[email protected]> | 2019-10-02 15:48:47 +0200 |
| commit | 45d85042aaaea7e4924c598cd0908b39a8df2d76 (patch) | |
| tree | d4047aad591c9dfa0017138fb668b9e051cb3831 /src/tests/test_pkcs11_high_level.cpp | |
| parent | b5dd3793106cc87f3a1a3a4c93c9ad8fef053ac7 (diff) | |
Review changes
* print name of test function which throws an exception (approach with less boilerplate)
* add author info to modified files
* applying botan coding style
Diffstat (limited to 'src/tests/test_pkcs11_high_level.cpp')
| -rw-r--r-- | src/tests/test_pkcs11_high_level.cpp | 1872 |
1 files changed, 748 insertions, 1124 deletions
diff --git a/src/tests/test_pkcs11_high_level.cpp b/src/tests/test_pkcs11_high_level.cpp index 74d718394..7d2ee56e8 100644 --- a/src/tests/test_pkcs11_high_level.cpp +++ b/src/tests/test_pkcs11_high_level.cpp @@ -1,6 +1,7 @@ /* * (C) 2016 Daniel Neus * (C) 2016 Philipp Weber +* (C) 2019 Michael Boric * * Botan is released under the Simplified BSD License (see license.txt) */ @@ -93,21 +94,14 @@ class TestSession Test::Result test_module_ctor() { Test::Result result("Module ctor"); - - try - { - result.test_throws("Module ctor fails for non existent path", []() - { - Module failing_module("/a/b/c"); - }); - Module module(Test::pkcs11_lib()); - result.test_success("Module ctor did not throw and completed successfully"); - } - catch (std::exception& e) - { - result.test_failure(e.what()); - } + result.test_throws("Module ctor fails for non existent path", []() + { + Module failing_module("/a/b/c"); + }); + + Module module(Test::pkcs11_lib()); + result.test_success("Module ctor did not throw and completed successfully"); return result; } @@ -116,20 +110,13 @@ Test::Result test_module_reload() { Test::Result result("Module reload"); - try - { - Module module(Test::pkcs11_lib()); + Module module(Test::pkcs11_lib()); - module.reload(); - result.test_success("Module reload did not throw and completed successfully"); + module.reload(); + result.test_success("Module reload did not throw and completed successfully"); - module.get_info(); - result.test_success("Module get_info() still works after reload"); - } - catch (std::exception& e) - { - result.test_failure(e.what()); - } + module.get_info(); + result.test_success("Module get_info() still works after reload"); return result; } @@ -137,20 +124,12 @@ Test::Result test_module_reload() Test::Result test_multiple_modules() { Test::Result result("Module copy"); + Module first_module(Test::pkcs11_lib()); - try - { - Module first_module(Test::pkcs11_lib()); - - result.test_throws("Module ctor fails if module is already initialized", []() - { - Module second_module(Test::pkcs11_lib()); - }); - } - catch (std::exception& e) - { - result.test_failure(e.what()); - } + result.test_throws("Module ctor fails if module is already initialized", []() + { + Module second_module(Test::pkcs11_lib()); + }); return result; } @@ -159,47 +138,40 @@ Test::Result test_module_get_info() { Test::Result result("Module info"); - try - { - Module module(Test::pkcs11_lib()); + Module module(Test::pkcs11_lib()); - Info info = module.get_info(); - result.test_ne("Cryptoki version != 0", info.cryptokiVersion.major, 0); - } - catch (std::exception& e) - { - result.test_failure(e.what()); - } + Info info = module.get_info(); + result.test_ne("Cryptoki version != 0", info.cryptokiVersion.major, 0); return result; } std::vector<Test::Result> run_pkcs11_tests( const std::string& name, - std::vector<std::function<Test::Result()>>& fns) + std::vector<std::pair<std::string, std::function<Test::Result()>>>& fns) { std::vector<Test::Result> results; for(size_t i = 0; i != fns.size(); ++i) - { + { try - { - results.push_back(fns[ i ]()); - } + { + results.push_back(fns[i].second()); + } catch(Botan::PKCS11::PKCS11_ReturnError& e) - { - results.push_back(Test::Result::Failure(name + " test " + std::to_string(i), e.what())); + { + results.push_back(Test::Result::Failure(name + " test " + fns[i].first, e.what())); if(e.get_return_value() == Botan::PKCS11::ReturnValue::PinIncorrect) - { + { break; // Do not continue to not potentially lock the token - } } + } catch(std::exception& e) - { - results.push_back(Test::Result::Failure(name + " test " + std::to_string(i), e.what())); - } + { + results.push_back(Test::Result::Failure(name + " test " + fns[i].first, e.what())); } + } return results; } @@ -209,13 +181,12 @@ class Module_Tests final : public Test public: std::vector<Test::Result> run() override { - std::vector<std::function<Test::Result()>> fns = + std::vector<std::pair<std::string, std::function<Test::Result()>>> fns = { - test_module_ctor, - test_multiple_modules, - test_module_get_info, - test_module_reload - + {STRING_AND_FUNCTION(test_module_ctor)}, + {STRING_AND_FUNCTION(test_multiple_modules)}, + {STRING_AND_FUNCTION(test_module_get_info)}, + {STRING_AND_FUNCTION(test_module_reload)} }; return run_pkcs11_tests("Module", fns); @@ -230,16 +201,9 @@ Test::Result test_slot_get_available_slots() { Test::Result result("Slot get_available_slots"); - try - { - Module module(Test::pkcs11_lib()); - std::vector<SlotId> slot_vec = Slot::get_available_slots(module, true); - result.test_gte("Available Slots with attached token >= 1", slot_vec.size(), 1); - } - catch (std::exception& e) - { - result.test_failure(e.what()); - } + Module module(Test::pkcs11_lib()); + std::vector<SlotId> slot_vec = Slot::get_available_slots(module, true); + result.test_gte("Available Slots with attached token >= 1", slot_vec.size(), 1); return result; } @@ -248,19 +212,12 @@ Test::Result test_slot_ctor() { Test::Result result("Slot ctor"); - try - { - Module module(Test::pkcs11_lib()); - std::vector<SlotId> slot_vec = Slot::get_available_slots(module, true); + Module module(Test::pkcs11_lib()); + std::vector<SlotId> slot_vec = Slot::get_available_slots(module, true); - Slot slot(module, slot_vec.at(0)); - result.test_success("Slot ctor completed successfully"); - result.test_is_eq(slot.slot_id(), slot_vec.at(0)); - } - catch (std::exception& e) - { - result.test_failure(e.what()); - } + Slot slot(module, slot_vec.at(0)); + result.test_success("Slot ctor completed successfully"); + result.test_is_eq(slot.slot_id(), slot_vec.at(0)); return result; } @@ -269,20 +226,13 @@ Test::Result test_get_slot_info() { Test::Result result("Slot get_slot_info"); - try - { - Module module(Test::pkcs11_lib()); - std::vector<SlotId> slot_vec = Slot::get_available_slots(module, true); - Slot slot(module, slot_vec.at(0)); + Module module(Test::pkcs11_lib()); + std::vector<SlotId> slot_vec = Slot::get_available_slots(module, true); + Slot slot(module, slot_vec.at(0)); - SlotInfo info = slot.get_slot_info(); - std::string description = reinterpret_cast< char* >(info.slotDescription); - result.confirm("Slot description is not empty", !description.empty()); - } - catch (std::exception& e) - { - result.test_failure(e.what()); - } + SlotInfo info = slot.get_slot_info(); + std::string description = reinterpret_cast< char* >(info.slotDescription); + result.confirm("Slot description is not empty", !description.empty()); return result; } @@ -306,23 +256,16 @@ Test::Result test_slot_invalid_id() { Test::Result result("Slot get_slot_info with invalid slot id"); - try - { - Module module(Test::pkcs11_lib()); + Module module(Test::pkcs11_lib()); - SlotId invalid_id = get_invalid_slot_id(module); + SlotId invalid_id = get_invalid_slot_id(module); - Slot slot(module, invalid_id); + Slot slot(module, invalid_id); - result.test_throws("get_slot_info fails for non existent slot id", [ &slot ]() - { - slot.get_slot_info(); - }); - } - catch (std::exception& e) - { - result.test_failure(e.what()); - } + result.test_throws("get_slot_info fails for non existent slot id", [ &slot ]() + { + slot.get_slot_info(); + }); return result; } @@ -331,20 +274,13 @@ Test::Result test_get_token_info() { Test::Result result("Slot get_token_info"); - try - { - Module module(Test::pkcs11_lib()); - std::vector<SlotId> slot_vec = Slot::get_available_slots(module, true); - Slot slot(module, slot_vec.at(0)); + Module module(Test::pkcs11_lib()); + std::vector<SlotId> slot_vec = Slot::get_available_slots(module, true); + Slot slot(module, slot_vec.at(0)); - TokenInfo info = slot.get_token_info(); - std::string label = reinterpret_cast< char* >(info.label); - result.confirm("Token label is not empty", ! label.empty()); - } - catch (std::exception& e) - { - result.test_failure(e.what()); - } + TokenInfo info = slot.get_token_info(); + std::string label = reinterpret_cast< char* >(info.label); + result.confirm("Token label is not empty", ! label.empty()); return result; } @@ -353,19 +289,12 @@ Test::Result test_get_mechanism_list() { Test::Result result("Slot get_mechanism_list"); - try - { - Module module(Test::pkcs11_lib()); - std::vector<SlotId> slot_vec = Slot::get_available_slots(module, true); - Slot slot(module, slot_vec.at(0)); + Module module(Test::pkcs11_lib()); + std::vector<SlotId> slot_vec = Slot::get_available_slots(module, true); + Slot slot(module, slot_vec.at(0)); - std::vector<MechanismType> mechanisms = slot.get_mechanism_list(); - result.confirm("The Slot supports at least one mechanism", !mechanisms.empty()); - } - catch (std::exception& e) - { - result.test_failure(e.what()); - } + std::vector<MechanismType> mechanisms = slot.get_mechanism_list(); + result.confirm("The Slot supports at least one mechanism", !mechanisms.empty()); return result; } @@ -374,19 +303,12 @@ Test::Result test_get_mechanisms_info() { Test::Result result("Slot get_mechanism_info"); - try - { - Module module(Test::pkcs11_lib()); - std::vector<SlotId> slot_vec = Slot::get_available_slots(module, true); - Slot slot(module, slot_vec.at(0)); + Module module(Test::pkcs11_lib()); + std::vector<SlotId> slot_vec = Slot::get_available_slots(module, true); + Slot slot(module, slot_vec.at(0)); - slot.get_mechanism_info(MechanismType::RsaPkcsKeyPairGen); - result.test_success("get_mechanism_info() completed successfully."); - } - catch (std::exception& e) - { - result.test_failure(e.what()); - } + slot.get_mechanism_info(MechanismType::RsaPkcsKeyPairGen); + result.test_success("get_mechanism_info() completed successfully."); return result; } @@ -396,16 +318,16 @@ class Slot_Tests final : public Test public: std::vector<Test::Result> run() override { - std::vector<std::function<Test::Result()>> fns = + std::vector<std::pair<std::string, std::function<Test::Result()>>> fns = { - test_slot_get_available_slots, - test_slot_ctor, - test_get_slot_info, - test_slot_invalid_id, - test_get_token_info, - test_get_mechanism_list, - test_get_mechanisms_info - }; + {STRING_AND_FUNCTION(test_slot_get_available_slots)}, + {STRING_AND_FUNCTION(test_slot_ctor)}, + {STRING_AND_FUNCTION(test_get_slot_info)}, + {STRING_AND_FUNCTION(test_slot_invalid_id)}, + {STRING_AND_FUNCTION(test_get_token_info)}, + {STRING_AND_FUNCTION(test_get_mechanism_list)}, + {STRING_AND_FUNCTION(test_get_mechanisms_info)} + }; return run_pkcs11_tests("Slot", fns); } @@ -419,35 +341,28 @@ Test::Result test_session_ctor() { Test::Result result("Session ctor"); - try - { - Module module(Test::pkcs11_lib()); - std::vector<SlotId> slot_vec = Slot::get_available_slots(module, true); - Slot slot(module, slot_vec.at(0)); + Module module(Test::pkcs11_lib()); + std::vector<SlotId> slot_vec = Slot::get_available_slots(module, true); + Slot slot(module, slot_vec.at(0)); - { - Session read_only_session(slot, true); - result.test_success("read only session opened successfully"); - } - { - Session read_write_session(slot, false); - result.test_success("read write session opened successfully"); - } - { - Flags flags = PKCS11::flags(Flag::SerialSession | Flag::RwSession); - Session read_write_session2(slot, flags, nullptr, nullptr); - result.test_success("read write session with flags param opened successfully"); - } - { - Session read_only_session(slot, true); - Session read_write_session(slot, false); - result.test_success("Opened multiple sessions successfully"); - } - } - catch (std::exception& e) - { - result.test_failure(e.what()); - } + { + Session read_only_session(slot, true); + result.test_success("read only session opened successfully"); + } + { + Session read_write_session(slot, false); + result.test_success("read write session opened successfully"); + } + { + Flags flags = PKCS11::flags(Flag::SerialSession | Flag::RwSession); + Session read_write_session2(slot, flags, nullptr, nullptr); + result.test_success("read write session with flags param opened successfully"); + } + { + Session read_only_session(slot, true); + Session read_write_session(slot, false); + result.test_success("Opened multiple sessions successfully"); + } return result; } @@ -456,22 +371,15 @@ Test::Result test_session_ctor_invalid_slot() { Test::Result result("Session ctor with invalid slot id"); - try - { - Module module(Test::pkcs11_lib()); + Module module(Test::pkcs11_lib()); - SlotId invalid_id = get_invalid_slot_id(module); - Slot slot(module, invalid_id); + SlotId invalid_id = get_invalid_slot_id(module); + Slot slot(module, invalid_id); - result.test_throws("Session ctor with invalid slot id fails", [&slot]() - { - Session session(slot, true); - }); - } - catch (std::exception& e) - { - result.test_failure(e.what()); - } + result.test_throws("Session ctor with invalid slot id fails", [&slot]() + { + Session session(slot, true); + }); return result; } @@ -480,22 +388,15 @@ Test::Result test_session_release() { Test::Result result("Session release/take ownership"); - try - { - Module module(Test::pkcs11_lib()); - std::vector<SlotId> slot_vec = Slot::get_available_slots(module, true); - Slot slot(module, slot_vec.at(0)); + Module module(Test::pkcs11_lib()); + std::vector<SlotId> slot_vec = Slot::get_available_slots(module, true); + Slot slot(module, slot_vec.at(0)); - Session session(slot, false); - SessionHandle handle = session.release(); + Session session(slot, false); + SessionHandle handle = session.release(); - Session session2(slot, handle); - result.test_success("releasing ownership and taking ownership works as expected."); - } - catch (std::exception& e) - { - result.test_failure(e.what()); - } + Session session2(slot, handle); + result.test_success("releasing ownership and taking ownership works as expected."); return result; } @@ -504,24 +405,17 @@ Test::Result test_session_login_logout() { Test::Result result("Session login/logout"); - try - { - Module module(Test::pkcs11_lib()); - std::vector<SlotId> slot_vec = Slot::get_available_slots(module, true); - Slot slot(module, slot_vec.at(0)); + Module module(Test::pkcs11_lib()); + std::vector<SlotId> slot_vec = Slot::get_available_slots(module, true); + Slot slot(module, slot_vec.at(0)); - Session session(slot, false); - session.login(UserType::User, PIN()); - session.logoff(); - result.test_success("user login/logout succeeded"); + Session session(slot, false); + session.login(UserType::User, PIN()); + session.logoff(); + result.test_success("user login/logout succeeded"); - session.login(UserType::SO, SO_PIN()); - result.test_success("SO login succeeded"); - } - catch (std::exception& e) - { - result.test_failure(e.what()); - } + session.login(UserType::SO, SO_PIN()); + result.test_success("SO login succeeded"); return result; } @@ -530,33 +424,26 @@ Test::Result test_session_info() { Test::Result result("Session session info"); - try - { - Module module(Test::pkcs11_lib()); - std::vector<SlotId> slot_vec = Slot::get_available_slots(module, true); - Slot slot(module, slot_vec.at(0)); + Module module(Test::pkcs11_lib()); + std::vector<SlotId> slot_vec = Slot::get_available_slots(module, true); + Slot slot(module, slot_vec.at(0)); - Session session(slot, false); - SessionInfo info = session.get_info(); - result.test_is_eq("slot id is correct", info.slotID, slot_vec.at(0)); - result.test_is_eq("state is a read write public session", info.state, - static_cast<CK_STATE>(SessionState::RwPublicSession)); + Session session(slot, false); + SessionInfo info = session.get_info(); + result.test_is_eq("slot id is correct", info.slotID, slot_vec.at(0)); + result.test_is_eq("state is a read write public session", info.state, + static_cast<CK_STATE>(SessionState::RwPublicSession)); - session.login(UserType::User, PIN()); - info = session.get_info(); - result.test_is_eq("state is a read write user session", info.state, - static_cast<CK_STATE>(SessionState::RwUserFunctions)); + session.login(UserType::User, PIN()); + info = session.get_info(); + result.test_is_eq("state is a read write user session", info.state, + static_cast<CK_STATE>(SessionState::RwUserFunctions)); - session.logoff(); - result.test_success("user login/logout succeeded"); + session.logoff(); + result.test_success("user login/logout succeeded"); - session.login(UserType::SO, SO_PIN()); - result.test_success("SO login succeeded"); - } - catch (std::exception& e) - { - result.test_failure(e.what()); - } + session.login(UserType::SO, SO_PIN()); + result.test_success("SO login succeeded"); return result; } @@ -566,13 +453,13 @@ class Session_Tests final : public Test public: std::vector<Test::Result> run() override { - std::vector<std::function<Test::Result()>> fns = + std::vector<std::pair<std::string, std::function<Test::Result()>>> fns = { - test_session_ctor, - test_session_ctor_invalid_slot, - test_session_release, - test_session_login_logout, - test_session_info + {STRING_AND_FUNCTION(test_session_ctor)}, + {STRING_AND_FUNCTION(test_session_ctor_invalid_slot)}, + {STRING_AND_FUNCTION(test_session_release)}, + {STRING_AND_FUNCTION(test_session_login_logout)}, + {STRING_AND_FUNCTION(test_session_info)} }; return run_pkcs11_tests("Session", fns); @@ -587,26 +474,19 @@ Test::Result test_attribute_container() { Test::Result result("AttributeContainer"); - try - { - AttributeContainer attributes; - attributes.add_class(ObjectClass::PrivateKey); + AttributeContainer attributes; + attributes.add_class(ObjectClass::PrivateKey); - std::string label("test"); - attributes.add_string(AttributeType::Label, label); + std::string label("test"); + attributes.add_string(AttributeType::Label, label); - std::vector<uint8_t> bin(4); - attributes.add_binary(AttributeType::Value, bin); + std::vector<uint8_t> bin(4); + attributes.add_binary(AttributeType::Value, bin); - attributes.add_bool(AttributeType::Sensitive, true); - attributes.add_numeric(AttributeType::ObjectId, 12); + attributes.add_bool(AttributeType::Sensitive, true); + attributes.add_numeric(AttributeType::ObjectId, 12); - result.test_eq("Five elements in attribute container", attributes.count(), 5); - } - catch (std::exception& e) - { - result.test_failure(e.what()); - } + result.test_eq("Five elements in attribute container", attributes.count(), 5); return result; } @@ -616,34 +496,27 @@ Test::Result test_create_destroy_data_object() { Test::Result result("Object create/delete data object"); - try - { - TestSession test_session(true); + TestSession test_session(true); - std::string value_string("test data"); - secure_vector<uint8_t> value(value_string.begin(), value_string.end()); + std::string value_string("test data"); + secure_vector<uint8_t> value(value_string.begin(), value_string.end()); - std::size_t id = 1337; - std::string label = "Botan test data object"; - std::string application = "Botan test application"; - DataObjectProperties data_obj_props; - data_obj_props.set_application(application); - data_obj_props.set_label(label); - data_obj_props.set_value(value); - data_obj_props.set_token(true); - data_obj_props.set_modifiable(true); - data_obj_props.set_object_id(DER_Encoder().encode(id).get_contents_unlocked()); + std::size_t id = 1337; + std::string label = "Botan test data object"; + std::string application = "Botan test application"; + DataObjectProperties data_obj_props; + data_obj_props.set_application(application); + data_obj_props.set_label(label); + data_obj_props.set_value(value); + data_obj_props.set_token(true); + data_obj_props.set_modifiable(true); + data_obj_props.set_object_id(DER_Encoder().encode(id).get_contents_unlocked()); - Object data_obj(test_session.session(), data_obj_props); - result.test_success("Data object creation was successful"); + Object data_obj(test_session.session(), data_obj_props); + result.test_success("Data object creation was successful"); - data_obj.destroy(); - result.test_success("Data object deletion was successful"); - } - catch (std::exception& e) - { - result.test_failure(e.what()); - } + data_obj.destroy(); + result.test_success("Data object deletion was successful"); return result; } @@ -652,48 +525,40 @@ Test::Result test_get_set_attribute_values() { Test::Result result("Object get/set attributes"); - try - { - TestSession test_session(true); - - // create object - std::string value_string("test data"); - secure_vector<uint8_t> value(value_string.begin(), value_string.end()); - - std::size_t id = 1337; - std::string label = "Botan test data object"; - std::string application = "Botan test application"; - DataObjectProperties data_obj_props; - data_obj_props.set_application(application); - data_obj_props.set_label(label); - data_obj_props.set_value(value); - data_obj_props.set_token(true); - data_obj_props.set_modifiable(true); - data_obj_props.set_object_id(DER_Encoder().encode(id).get_contents_unlocked()); - Object data_obj(test_session.session(), data_obj_props); - - // get attribute - secure_vector<uint8_t> retrieved_label = data_obj.get_attribute_value(AttributeType::Label); - std::string retrieved_label_string(retrieved_label.begin(), retrieved_label.end()); - result.test_eq("label was set correctly", retrieved_label_string, label); - - // set attribute - std::string new_label = "Botan test modified data object label"; - secure_vector<uint8_t> new_label_secvec(new_label.begin(), new_label.end()); - data_obj.set_attribute_value(AttributeType::Label, new_label_secvec); - - // get and check attribute - retrieved_label = data_obj.get_attribute_value(AttributeType::Label); - retrieved_label_string = std::string(retrieved_label.begin(), retrieved_label.end()); - result.test_eq("label was modified correctly", retrieved_label_string, new_label); - - data_obj.destroy(); - } - catch (std::exception& e) - { - result.test_failure(e.what()); - } - + TestSession test_session(true); + + // create object + std::string value_string("test data"); + secure_vector<uint8_t> value(value_string.begin(), value_string.end()); + + std::size_t id = 1337; + std::string label = "Botan test data object"; + std::string application = "Botan test application"; + DataObjectProperties data_obj_props; + data_obj_props.set_application(application); + data_obj_props.set_label(label); + data_obj_props.set_value(value); + data_obj_props.set_token(true); + data_obj_props.set_modifiable(true); + data_obj_props.set_object_id(DER_Encoder().encode(id).get_contents_unlocked()); + Object data_obj(test_session.session(), data_obj_props); + + // get attribute + secure_vector<uint8_t> retrieved_label = data_obj.get_attribute_value(AttributeType::Label); + std::string retrieved_label_string(retrieved_label.begin(), retrieved_label.end()); + result.test_eq("label was set correctly", retrieved_label_string, label); + + // set attribute + std::string new_label = "Botan test modified data object label"; + secure_vector<uint8_t> new_label_secvec(new_label.begin(), new_label.end()); + data_obj.set_attribute_value(AttributeType::Label, new_label_secvec); + + // get and check attribute + retrieved_label = data_obj.get_attribute_value(AttributeType::Label); + retrieved_label_string = std::string(retrieved_label.begin(), retrieved_label.end()); + result.test_eq("label was modified correctly", retrieved_label_string, new_label); + + data_obj.destroy(); return result; } @@ -701,50 +566,42 @@ Test::Result test_object_finder() { Test::Result result("ObjectFinder"); - try - { - TestSession test_session(true); - - // create object - std::string value_string("test data"); - secure_vector<uint8_t> value(value_string.begin(), value_string.end()); - - std::size_t id = 1337; - std::string label = "Botan test data object"; - std::string application = "Botan test application"; - DataObjectProperties data_obj_props; - data_obj_props.set_application(application); - data_obj_props.set_label(label); - data_obj_props.set_value(value); - data_obj_props.set_token(true); - data_obj_props.set_modifiable(true); - data_obj_props.set_object_id(DER_Encoder().encode(id).get_contents_unlocked()); - Object data_obj(test_session.session(), data_obj_props); - - // search created object - AttributeContainer search_template; - search_template.add_string(AttributeType::Label, label); - ObjectFinder finder(test_session.session(), search_template.attributes()); - - auto search_result = finder.find(); - result.test_eq("one object found", search_result.size(), 1); - finder.finish(); - - Object obj_found(test_session.session(), search_result.at(0)); - result.test_eq("found the object just created (same application)", - obj_found.get_attribute_value(AttributeType::Application), data_obj.get_attribute_value(AttributeType::Application)); - - auto search_result2 = Object::search<Object>(test_session.session(), search_template.attributes()); - result.test_eq("found the object just created (same label)", obj_found.get_attribute_value(AttributeType::Label), - search_result2.at(0).get_attribute_value(AttributeType::Label)); - - data_obj.destroy(); - } - catch (std::exception& e) - { - result.test_failure(e.what()); - } - + TestSession test_session(true); + + // create object + std::string value_string("test data"); + secure_vector<uint8_t> value(value_string.begin(), value_string.end()); + + std::size_t id = 1337; + std::string label = "Botan test data object"; + std::string application = "Botan test application"; + DataObjectProperties data_obj_props; + data_obj_props.set_application(application); + data_obj_props.set_label(label); + data_obj_props.set_value(value); + data_obj_props.set_token(true); + data_obj_props.set_modifiable(true); + data_obj_props.set_object_id(DER_Encoder().encode(id).get_contents_unlocked()); + Object data_obj(test_session.session(), data_obj_props); + + // search created object + AttributeContainer search_template; + search_template.add_string(AttributeType::Label, label); + ObjectFinder finder(test_session.session(), search_template.attributes()); + + auto search_result = finder.find(); + result.test_eq("one object found", search_result.size(), 1); + finder.finish(); + + Object obj_found(test_session.session(), search_result.at(0)); + result.test_eq("found the object just created (same application)", + obj_found.get_attribute_value(AttributeType::Application), data_obj.get_attribute_value(AttributeType::Application)); + + auto search_result2 = Object::search<Object>(test_session.session(), search_template.attributes()); + result.test_eq("found the object just created (same label)", obj_found.get_attribute_value(AttributeType::Label), + search_result2.at(0).get_attribute_value(AttributeType::Label)); + + data_obj.destroy(); return result; } @@ -752,45 +609,37 @@ Test::Result test_object_copy() { Test::Result result("Object copy"); - try - { - TestSession test_session(true); - - // create object - std::string value_string("test data"); - secure_vector<uint8_t> value(value_string.begin(), value_string.end()); - - std::size_t id = 1337; - std::string label = "Botan test data object"; - std::string application = "Botan test application"; - DataObjectProperties data_obj_props; - data_obj_props.set_application(application); - data_obj_props.set_label(label); - data_obj_props.set_value(value); - data_obj_props.set_token(true); - data_obj_props.set_modifiable(true); - data_obj_props.set_object_id(DER_Encoder().encode(id).get_contents_unlocked()); - Object data_obj(test_session.session(), data_obj_props); - - // copy created object - AttributeContainer copy_attributes; - copy_attributes.add_string(AttributeType::Label, "Botan test copied object"); - ObjectHandle copied_obj_handle = data_obj.copy(copy_attributes); - - ObjectFinder searcher(test_session.session(), copy_attributes.attributes()); - auto search_result = searcher.find(); - result.test_eq("one object found", search_result.size(), 1); - - data_obj.destroy(); - - Object copied_obj(test_session.session(), copied_obj_handle); - copied_obj.destroy(); - } - catch (std::exception& e) - { - result.test_failure(e.what()); - } - + TestSession test_session(true); + + // create object + std::string value_string("test data"); + secure_vector<uint8_t> value(value_string.begin(), value_string.end()); + + std::size_t id = 1337; + std::string label = "Botan test data object"; + std::string application = "Botan test application"; + DataObjectProperties data_obj_props; + data_obj_props.set_application(application); + data_obj_props.set_label(label); + data_obj_props.set_value(value); + data_obj_props.set_token(true); + data_obj_props.set_modifiable(true); + data_obj_props.set_object_id(DER_Encoder().encode(id).get_contents_unlocked()); + Object data_obj(test_session.session(), data_obj_props); + + // copy created object + AttributeContainer copy_attributes; + copy_attributes.add_string(AttributeType::Label, "Botan test copied object"); + ObjectHandle copied_obj_handle = data_obj.copy(copy_attributes); + + ObjectFinder searcher(test_session.session(), copy_attributes.attributes()); + auto search_result = searcher.find(); + result.test_eq("one object found", search_result.size(), 1); + + data_obj.destroy(); + + Object copied_obj(test_session.session(), copied_obj_handle); + copied_obj.destroy(); return result; } #endif @@ -800,14 +649,14 @@ class Object_Tests final : public Test public: std::vector<Test::Result> run() override { - std::vector<std::function<Test::Result()>> fns = + std::vector<std::pair<std::string, std::function<Test::Result()>>> fns = { - test_attribute_container + {STRING_AND_FUNCTION(test_attribute_container)} #if defined(BOTAN_HAS_ASN1) - , test_create_destroy_data_object - , test_get_set_attribute_values - , test_object_finder - , test_object_copy + , {STRING_AND_FUNCTION(test_create_destroy_data_object)} + , {STRING_AND_FUNCTION(test_get_set_attribute_values)} + , {STRING_AND_FUNCTION(test_object_finder)} + , {STRING_AND_FUNCTION(test_object_copy)} #endif }; @@ -825,39 +674,31 @@ Test::Result test_rsa_privkey_import() { Test::Result result("PKCS11 import RSA private key"); - try - { - TestSession test_session(true); + TestSession test_session(true); - // create private key - RSA_PrivateKey priv_key(Test::rng(), 2048); - result.confirm("Key self test OK", priv_key.check_key(Test::rng(), true)); + // create private key + RSA_PrivateKey priv_key(Test::rng(), 2048); + result.confirm("Key self test OK", priv_key.check_key(Test::rng(), true)); - // import to card - RSA_PrivateKeyImportProperties props(priv_key.get_n(), priv_key.get_d()); - props.set_pub_exponent(priv_key.get_e()); - props.set_prime_1(priv_key.get_p()); - props.set_prime_2(priv_key.get_q()); - props.set_coefficient(priv_key.get_c()); - props.set_exponent_1(priv_key.get_d1()); - props.set_exponent_2(priv_key.get_d2()); + // import to card + RSA_PrivateKeyImportProperties props(priv_key.get_n(), priv_key.get_d()); + props.set_pub_exponent(priv_key.get_e()); + props.set_prime_1(priv_key.get_p()); + props.set_prime_2(priv_key.get_q()); + props.set_coefficient(priv_key.get_c()); + props.set_exponent_1(priv_key.get_d1()); + props.set_exponent_2(priv_key.get_d2()); - props.set_token(true); - props.set_private(true); - props.set_decrypt(true); - props.set_sign(true); + props.set_token(true); + props.set_private(true); + props.set_decrypt(true); + props.set_sign(true); - PKCS11_RSA_PrivateKey pk(test_session.session(), props); - result.test_success("RSA private key import was successful"); - result.confirm("PK self test OK", pk.check_key(Test::rng(), true)); - - pk.destroy(); - } - catch (std::exception& e) - { - result.test_failure(e.what()); - } + PKCS11_RSA_PrivateKey pk(test_session.session(), props); + result.test_success("RSA private key import was successful"); + result.confirm("PK self test OK", pk.check_key(Test::rng(), true)); + pk.destroy(); return result; } @@ -865,43 +706,35 @@ Test::Result test_rsa_privkey_export() { Test::Result result("PKCS11 export RSA private key"); - try - { - TestSession test_session(true); + TestSession test_session(true); - // create private key - RSA_PrivateKey priv_key(Test::rng(), 2048); + // create private key + RSA_PrivateKey priv_key(Test::rng(), 2048); - // import to card - RSA_PrivateKeyImportProperties props(priv_key.get_n(), priv_key.get_d()); - props.set_pub_exponent(priv_key.get_e()); - props.set_prime_1(priv_key.get_p()); - props.set_prime_2(priv_key.get_q()); - props.set_coefficient(priv_key.get_c()); - props.set_exponent_1(priv_key.get_d1()); - props.set_exponent_2(priv_key.get_d2()); + // import to card + RSA_PrivateKeyImportProperties props(priv_key.get_n(), priv_key.get_d()); + props.set_pub_exponent(priv_key.get_e()); + props.set_prime_1(priv_key.get_p()); + props.set_prime_2(priv_key.get_q()); + props.set_coefficient(priv_key.get_c()); + props.set_exponent_1(priv_key.get_d1()); + props.set_exponent_2(priv_key.get_d2()); - props.set_token(true); - props.set_private(true); - props.set_decrypt(true); - props.set_sign(true); - props.set_extractable(true); - props.set_sensitive(false); + props.set_token(true); + props.set_private(true); + props.set_decrypt(true); + props.set_sign(true); + props.set_extractable(true); + props.set_sensitive(false); - PKCS11_RSA_PrivateKey pk(test_session.session(), props); - result.confirm("Check PK11 key", pk.check_key(Test::rng(), true)); + PKCS11_RSA_PrivateKey pk(test_session.session(), props); + result.confirm("Check PK11 key", pk.check_key(Test::rng(), true)); - RSA_PrivateKey exported = pk.export_key(); - result.test_success("RSA private key export was successful"); - result.confirm("Check exported key", exported.check_key(Test::rng(), true)); - - pk.destroy(); - } - catch (std::exception& e) - { - result.test_failure(e.what()); - } + RSA_PrivateKey exported = pk.export_key(); + result.test_success("RSA private key export was successful"); + result.confirm("Check exported key", exported.check_key(Test::rng(), true)); + pk.destroy(); return result; } @@ -909,29 +742,22 @@ Test::Result test_rsa_pubkey_import() { Test::Result result("PKCS11 import RSA public key"); - try - { - TestSession test_session(true); + TestSession test_session(true); - // create public key from private key - RSA_PrivateKey priv_key(Test::rng(), 2048); + // create public key from private key + RSA_PrivateKey priv_key(Test::rng(), 2048); - // import to card - RSA_PublicKeyImportProperties props(priv_key.get_n(), priv_key.get_e()); - props.set_token(true); - props.set_encrypt(true); - props.set_private(false); + // import to card + RSA_PublicKeyImportProperties props(priv_key.get_n(), priv_key.get_e()); + props.set_token(true); + props.set_encrypt(true); + props.set_private(false); - PKCS11_RSA_PublicKey pk(test_session.session(), props); - result.test_success("RSA public key import was successful"); - result.confirm("Check PK11 key", pk.check_key(Test::rng(), true)); + PKCS11_RSA_PublicKey pk(test_session.session(), props); + result.test_success("RSA public key import was successful"); + result.confirm("Check PK11 key", pk.check_key(Test::rng(), true)); - pk.destroy(); - } - catch (std::exception& e) - { - result.test_failure(e.what()); - } + pk.destroy(); return result; } @@ -939,26 +765,18 @@ Test::Result test_rsa_pubkey_import() Test::Result test_rsa_generate_private_key() { Test::Result result("PKCS11 generate RSA private key"); - - try - { - TestSession test_session(true); + TestSession test_session(true); - RSA_PrivateKeyGenerationProperties props; - props.set_token(true); - props.set_private(true); - props.set_sign(true); - props.set_decrypt(true); + RSA_PrivateKeyGenerationProperties props; + props.set_token(true); + props.set_private(true); + props.set_sign(true); + props.set_decrypt(true); - PKCS11_RSA_PrivateKey pk(test_session.session(), 2048, props); - result.test_success("RSA private key generation was successful"); + PKCS11_RSA_PrivateKey pk(test_session.session(), 2048, props); + result.test_success("RSA private key generation was successful"); - pk.destroy(); - } - catch (std::exception& e) - { - result.test_failure(e.what()); - } + pk.destroy(); return result; } @@ -986,21 +804,13 @@ PKCS11_RSA_KeyPair generate_rsa_keypair(const TestSession& test_session) Test::Result test_rsa_generate_key_pair() { Test::Result result("PKCS11 generate RSA key pair"); + TestSession test_session(true); - try - { - TestSession test_session(true); - - PKCS11_RSA_KeyPair keypair = generate_rsa_keypair(test_session); - result.test_success("RSA key pair generation was successful"); + PKCS11_RSA_KeyPair keypair = generate_rsa_keypair(test_session); + result.test_success("RSA key pair generation was successful"); - keypair.first.destroy(); - keypair.second.destroy(); - } - catch (std::exception& e) - { - result.test_failure(e.what()); - } + keypair.first.destroy(); + keypair.second.destroy(); return result; } @@ -1008,41 +818,33 @@ Test::Result test_rsa_generate_key_pair() Test::Result test_rsa_encrypt_decrypt() { Test::Result result("PKCS11 RSA encrypt decrypt"); + TestSession test_session(true); - try - { - TestSession test_session(true); + // generate key pair + PKCS11_RSA_KeyPair keypair = generate_rsa_keypair(test_session); - // generate key pair - PKCS11_RSA_KeyPair keypair = generate_rsa_keypair(test_session); + auto encrypt_and_decrypt = [&keypair, &result](const std::vector<uint8_t>& plaintext, const std::string& padding) + { + Botan::PK_Encryptor_EME encryptor(keypair.first, Test::rng(), padding); + auto encrypted = encryptor.encrypt(plaintext, Test::rng()); - auto encrypt_and_decrypt = [&keypair, &result](const std::vector<uint8_t>& plaintext, const std::string& padding) - { - Botan::PK_Encryptor_EME encryptor(keypair.first, Test::rng(), padding); - auto encrypted = encryptor.encrypt(plaintext, Test::rng()); + Botan::PK_Decryptor_EME decryptor(keypair.second, Test::rng(), padding); + auto decrypted = decryptor.decrypt(encrypted); - Botan::PK_Decryptor_EME decryptor(keypair.second, Test::rng(), padding); - auto decrypted = decryptor.decrypt(encrypted); + result.test_eq("RSA PKCS11 encrypt and decrypt: " + padding, decrypted, plaintext); + }; - result.test_eq("RSA PKCS11 encrypt and decrypt: " + padding, decrypted, plaintext); - }; + std::vector<uint8_t> plaintext(256); + std::iota(std::begin(plaintext), std::end(plaintext), static_cast<uint8_t>(0)); + encrypt_and_decrypt(plaintext, "Raw"); - std::vector<uint8_t> plaintext(256); - std::iota(std::begin(plaintext), std::end(plaintext), static_cast<uint8_t>(0)); - encrypt_and_decrypt(plaintext, "Raw"); + plaintext = { 0x00, 0x01, 0x02, 0x03, 0x04, 0x00 }; + encrypt_and_decrypt(plaintext, "EME-PKCS1-v1_5"); - plaintext = { 0x00, 0x01, 0x02, 0x03, 0x04, 0x00 }; - encrypt_and_decrypt(plaintext, "EME-PKCS1-v1_5"); + encrypt_and_decrypt(plaintext, "OAEP(SHA-1)"); - encrypt_and_decrypt(plaintext, "OAEP(SHA-1)"); - - keypair.first.destroy(); - keypair.second.destroy(); - } - catch (std::exception& e) - { - result.test_failure(e.what()); - } + keypair.first.destroy(); + keypair.second.destroy(); return result; } @@ -1050,63 +852,55 @@ Test::Result test_rsa_encrypt_decrypt() Test::Result test_rsa_sign_verify() { Test::Result result("PKCS11 RSA sign and verify"); + TestSession test_session(true); - try - { - TestSession test_session(true); + // generate key pair + PKCS11_RSA_KeyPair keypair = generate_rsa_keypair(test_session); - // generate key pair - PKCS11_RSA_KeyPair keypair = generate_rsa_keypair(test_session); + std::vector<uint8_t> plaintext(256); + std::iota(std::begin(plaintext), std::end(plaintext), static_cast<uint8_t>(0)); - std::vector<uint8_t> plaintext(256); - std::iota(std::begin(plaintext), std::end(plaintext), static_cast<uint8_t>(0)); - - auto sign_and_verify = [&keypair, &plaintext, &result](std::string const& emsa, bool multipart) + auto sign_and_verify = [&keypair, &plaintext, &result](std::string const& emsa, bool multipart) + { + Botan::PK_Signer signer(keypair.second, Test::rng(), emsa, Botan::IEEE_1363); + std::vector<uint8_t> signature; + if(multipart) { - Botan::PK_Signer signer(keypair.second, Test::rng(), emsa, Botan::IEEE_1363); - std::vector<uint8_t> signature; - if(multipart) - { - signer.update(plaintext.data(), plaintext.size() / 2); - signature = signer.sign_message(plaintext.data() + plaintext.size() / 2, plaintext.size() / 2, Test::rng()); - } - else - { - signature = signer.sign_message(plaintext, Test::rng()); - } + signer.update(plaintext.data(), plaintext.size() / 2); + signature = signer.sign_message(plaintext.data() + plaintext.size() / 2, plaintext.size() / 2, Test::rng()); + } + else + { + signature = signer.sign_message(plaintext, Test::rng()); + } - Botan::PK_Verifier verifier(keypair.first, emsa, Botan::IEEE_1363); - bool rsa_ok = false; - if(multipart) - { - verifier.update(plaintext.data(), plaintext.size() / 2); - rsa_ok = verifier.verify_message(plaintext.data() + plaintext.size() / 2, plaintext.size() / 2, - signature.data(), signature.size()); - } - else - { - rsa_ok = verifier.verify_message(plaintext, signature); - } + Botan::PK_Verifier verifier(keypair.first, emsa, Botan::IEEE_1363); + bool rsa_ok = false; + if(multipart) + { + verifier.update(plaintext.data(), plaintext.size() / 2); + rsa_ok = verifier.verify_message(plaintext.data() + plaintext.size() / 2, plaintext.size() / 2, + signature.data(), signature.size()); + } + else + { + rsa_ok = verifier.verify_message(plaintext, signature); + } - result.test_eq("RSA PKCS11 sign and verify: " + emsa, rsa_ok, true); - }; + result.test_eq("RSA PKCS11 sign and verify: " + emsa, rsa_ok, true); + }; - // single-part sign - sign_and_verify("Raw", false); - sign_and_verify("EMSA3(SHA-256)", false); - sign_and_verify("EMSA4(SHA-256)", false); + // single-part sign + sign_and_verify("Raw", false); + sign_and_verify("EMSA3(SHA-256)", false); + sign_and_verify("EMSA4(SHA-256)", false); - // multi-part sign - sign_and_verify("EMSA3(SHA-256)", true); - sign_and_verify("EMSA4(SHA-256)", true); + // multi-part sign + sign_and_verify("EMSA3(SHA-256)", true); + sign_and_verify("EMSA4(SHA-256)", true); - keypair.first.destroy(); - keypair.second.destroy(); - } - catch (std::exception& e) - { - result.test_failure(e.what()); - } + keypair.first.destroy(); + keypair.second.destroy(); return result; } @@ -1116,15 +910,15 @@ class PKCS11_RSA_Tests final : public Test public: std::vector<Test::Result> run() override { - std::vector<std::function<Test::Result()>> fns = + std::vector<std::pair<std::string, std::function<Test::Result()>>> fns = { - test_rsa_privkey_import, - test_rsa_pubkey_import, - test_rsa_privkey_export, - test_rsa_generate_private_key, - test_rsa_generate_key_pair, - test_rsa_encrypt_decrypt, - test_rsa_sign_verify + {STRING_AND_FUNCTION(test_rsa_privkey_import)}, + {STRING_AND_FUNCTION(test_rsa_pubkey_import)}, + {STRING_AND_FUNCTION(test_rsa_privkey_export)}, + {STRING_AND_FUNCTION(test_rsa_generate_private_key)}, + {STRING_AND_FUNCTION(test_rsa_generate_key_pair)}, + {STRING_AND_FUNCTION(test_rsa_encrypt_decrypt)}, + {STRING_AND_FUNCTION(test_rsa_sign_verify)} }; return run_pkcs11_tests("PKCS11 RSA", fns); @@ -1142,37 +936,29 @@ Test::Result test_ecdsa_privkey_import() { Test::Result result("PKCS11 import ECDSA private key"); - try - { - TestSession test_session(true); + TestSession test_session(true); - // create ecdsa private key - ECDSA_PrivateKey priv_key(Test::rng(), EC_Group("secp256r1")); - result.confirm("Key self test OK", priv_key.check_key(Test::rng(), true)); - priv_key.set_parameter_encoding(EC_Group_Encoding::EC_DOMPAR_ENC_OID); + // create ecdsa private key + ECDSA_PrivateKey priv_key(Test::rng(), EC_Group("secp256r1")); + result.confirm("Key self test OK", priv_key.check_key(Test::rng(), true)); + priv_key.set_parameter_encoding(EC_Group_Encoding::EC_DOMPAR_ENC_OID); - // import to card - EC_PrivateKeyImportProperties props(priv_key.DER_domain(), priv_key.private_value()); - props.set_token(true); - props.set_private(true); - props.set_sign(true); + // import to card + EC_PrivateKeyImportProperties props(priv_key.DER_domain(), priv_key.private_value()); + props.set_token(true); + props.set_private(true); + props.set_sign(true); - // label - std::string label = "Botan test ecdsa key"; - props.set_label(label); + // label + std::string label = "Botan test ecdsa key"; + props.set_label(label); - PKCS11_ECDSA_PrivateKey pk(test_session.session(), props); - result.test_success("ECDSA private key import was successful"); - pk.set_public_point(priv_key.public_point()); - result.confirm("P11 key self test OK", pk.check_key(Test::rng(), false)); - - pk.destroy(); - } - catch (std::exception& e) - { - result.test_failure(e.what()); - } + PKCS11_ECDSA_PrivateKey pk(test_session.session(), props); + result.test_success("ECDSA private key import was successful"); + pk.set_public_point(priv_key.public_point()); + result.confirm("P11 key self test OK", pk.check_key(Test::rng(), false)); + pk.destroy(); return result; } @@ -1180,42 +966,34 @@ Test::Result test_ecdsa_privkey_export() { Test::Result result("PKCS11 export ECDSA private key"); - try - { - TestSession test_session(true); - - // create private key - ECDSA_PrivateKey priv_key(Test::rng(), EC_Group("secp256r1")); - priv_key.set_parameter_encoding(EC_Group_Encoding::EC_DOMPAR_ENC_OID); + TestSession test_session(true); - result.confirm("Check ECDSA key", priv_key.check_key(Test::rng(), true)); - // import to card - EC_PrivateKeyImportProperties props(priv_key.DER_domain(), priv_key.private_value()); - props.set_token(true); - props.set_private(true); - props.set_sign(true); - props.set_extractable(true); + // create private key + ECDSA_PrivateKey priv_key(Test::rng(), EC_Group("secp256r1")); + priv_key.set_parameter_encoding(EC_Group_Encoding::EC_DOMPAR_ENC_OID); - // label - std::string label = "Botan test ecdsa key"; - props.set_label(label); + result.confirm("Check ECDSA key", priv_key.check_key(Test::rng(), true)); + // import to card + EC_PrivateKeyImportProperties props(priv_key.DER_domain(), priv_key.private_value()); + props.set_token(true); + props.set_private(true); + props.set_sign(true); + props.set_extractable(true); - PKCS11_ECDSA_PrivateKey pk(test_session.session(), props); - pk.set_public_point(priv_key.public_point()); - result.confirm("Check PK11 key", pk.check_key(Test::rng(), false)); + // label + std::string label = "Botan test ecdsa key"; + props.set_label(label); - ECDSA_PrivateKey exported = pk.export_key(); - result.test_success("ECDSA private key export was successful"); - result.confirm("Check exported key valid", exported.check_key(Test::rng(), true)); - result.test_eq("Check exported key contents", exported.private_key_bits(), priv_key.private_key_bits()); + PKCS11_ECDSA_PrivateKey pk(test_session.session(), props); + pk.set_public_point(priv_key.public_point()); + result.confirm("Check PK11 key", pk.check_key(Test::rng(), false)); - pk.destroy(); - } - catch (std::exception& e) - { - result.test_failure(e.what()); - } + ECDSA_PrivateKey exported = pk.export_key(); + result.test_success("ECDSA private key export was successful"); + result.confirm("Check exported key valid", exported.check_key(Test::rng(), true)); + result.test_eq("Check exported key contents", exported.private_key_bits(), priv_key.private_key_bits()); + pk.destroy(); return result; } @@ -1223,38 +1001,30 @@ Test::Result test_ecdsa_pubkey_import() { Test::Result result("PKCS11 import ECDSA public key"); - try - { - TestSession test_session(true); - - // create ecdsa private key - ECDSA_PrivateKey priv_key(Test::rng(), EC_Group("secp256r1")); - priv_key.set_parameter_encoding(EC_Group_Encoding::EC_DOMPAR_ENC_OID); + TestSession test_session(true); - const std::vector<uint8_t> enc_point = DER_Encoder().encode( - priv_key.public_point().encode(PointGFp::UNCOMPRESSED), OCTET_STRING). - get_contents_unlocked(); + // create ecdsa private key + ECDSA_PrivateKey priv_key(Test::rng(), EC_Group("secp256r1")); + priv_key.set_parameter_encoding(EC_Group_Encoding::EC_DOMPAR_ENC_OID); - // import to card - EC_PublicKeyImportProperties props(priv_key.DER_domain(), enc_point); - props.set_token(true); - props.set_verify(true); - props.set_private(false); + const std::vector<uint8_t> enc_point = DER_Encoder().encode( + priv_key.public_point().encode(PointGFp::UNCOMPRESSED), OCTET_STRING). + get_contents_unlocked(); - // label - std::string label = "Botan test ecdsa pub key"; - props.set_label(label); + // import to card + EC_PublicKeyImportProperties props(priv_key.DER_domain(), enc_point); + props.set_token(true); + props.set_verify(true); + props.set_private(false); - PKCS11_ECDSA_PublicKey pk(test_session.session(), props); - result.test_success("ECDSA public key import was successful"); + // label + std::string label = "Botan test ecdsa pub key"; + props.set_label(label); - pk.destroy(); - } - catch (std::exception& e) - { - result.test_failure(e.what()); - } + PKCS11_ECDSA_PublicKey pk(test_session.session(), props); + result.test_success("ECDSA public key import was successful"); + pk.destroy(); return result; } @@ -1262,39 +1032,32 @@ Test::Result test_ecdsa_pubkey_export() { Test::Result result("PKCS11 export ECDSA public key"); - try - { - TestSession test_session(true); + TestSession test_session(true); - // create public key from private key - ECDSA_PrivateKey priv_key(Test::rng(), EC_Group("secp256r1")); - priv_key.set_parameter_encoding(EC_Group_Encoding::EC_DOMPAR_ENC_OID); + // create public key from private key + ECDSA_PrivateKey priv_key(Test::rng(), EC_Group("secp256r1")); + priv_key.set_parameter_encoding(EC_Group_Encoding::EC_DOMPAR_ENC_OID); - const std::vector<uint8_t> enc_point = DER_Encoder().encode( - priv_key.public_point().encode(PointGFp::UNCOMPRESSED), OCTET_STRING). - get_contents_unlocked(); + const std::vector<uint8_t> enc_point = DER_Encoder().encode( + priv_key.public_point().encode(PointGFp::UNCOMPRESSED), OCTET_STRING). + get_contents_unlocked(); - // import to card - EC_PublicKeyImportProperties props(priv_key.DER_domain(), enc_point); - props.set_token(true); - props.set_verify(true); - props.set_private(false); + // import to card + EC_PublicKeyImportProperties props(priv_key.DER_domain(), enc_point); + props.set_token(true); + props.set_verify(true); + props.set_private(false); - // label - std::string label = "Botan test ecdsa pub key"; - props.set_label(label); + // label + std::string label = "Botan test ecdsa pub key"; + props.set_label(label); - PKCS11_ECDSA_PublicKey pk(test_session.session(), props); + PKCS11_ECDSA_PublicKey pk(test_session.session(), props); - ECDSA_PublicKey exported = pk.export_key(); - result.test_success("ECDSA public key export was successful"); + ECDSA_PublicKey exported = pk.export_key(); + result.test_success("ECDSA public key export was successful"); - pk.destroy(); - } - catch (std::exception& e) - { - result.test_failure(e.what()); - } + pk.destroy(); return result; } @@ -1302,102 +1065,82 @@ Test::Result test_ecdsa_pubkey_export() Test::Result test_ecdsa_generate_private_key() { Test::Result result("PKCS11 generate ECDSA private key"); + TestSession test_session(true); - try - { - TestSession test_session(true); + EC_PrivateKeyGenerationProperties props; + props.set_token(true); + props.set_private(true); + props.set_sign(true); - EC_PrivateKeyGenerationProperties props; - props.set_token(true); - props.set_private(true); - props.set_sign(true); + PKCS11_ECDSA_PrivateKey pk(test_session.session(), + EC_Group("secp256r1").DER_encode(EC_Group_Encoding::EC_DOMPAR_ENC_OID), props); + result.test_success("ECDSA private key generation was successful"); - PKCS11_ECDSA_PrivateKey pk(test_session.session(), - EC_Group("secp256r1").DER_encode(EC_Group_Encoding::EC_DOMPAR_ENC_OID), props); - result.test_success("ECDSA private key generation was successful"); - - pk.destroy(); - } - catch (std::exception& e) - { - result.test_failure(e.what()); - } + pk.destroy(); return result; } PKCS11_ECDSA_KeyPair generate_ecdsa_keypair(const TestSession& test_session, const std::string& curve, EC_Group_Encoding ec_dompar_enc) { - EC_PublicKeyGenerationProperties pub_props(EC_Group(curve).DER_encode(ec_dompar_enc)); - pub_props.set_label("BOTAN_TEST_ECDSA_PUB_KEY"); - pub_props.set_token(true); - pub_props.set_verify(true); - pub_props.set_private(false); - pub_props.set_modifiable(true); + EC_PublicKeyGenerationProperties pub_props(EC_Group(curve).DER_encode(ec_dompar_enc)); + pub_props.set_label("BOTAN_TEST_ECDSA_PUB_KEY"); + pub_props.set_token(true); + pub_props.set_verify(true); + pub_props.set_private(false); + pub_props.set_modifiable(true); - EC_PrivateKeyGenerationProperties priv_props; - priv_props.set_label("BOTAN_TEST_ECDSA_PRIV_KEY"); - priv_props.set_token(true); - priv_props.set_private(true); - priv_props.set_sensitive(true); - priv_props.set_extractable(false); - priv_props.set_sign(true); - priv_props.set_modifiable(true); + EC_PrivateKeyGenerationProperties priv_props; + priv_props.set_label("BOTAN_TEST_ECDSA_PRIV_KEY"); + priv_props.set_token(true); + priv_props.set_private(true); + priv_props.set_sensitive(true); + priv_props.set_extractable(false); + priv_props.set_sign(true); + priv_props.set_modifiable(true); - return PKCS11::generate_ecdsa_keypair(test_session.session(), pub_props, priv_props); + return PKCS11::generate_ecdsa_keypair(test_session.session(), pub_props, priv_props); } Test::Result test_ecdsa_generate_keypair() { Test::Result result("PKCS11 generate ECDSA key pair"); + TestSession test_session(true); + std::vector<std::string> curves; - try - { - TestSession test_session(true); - std::vector<std::string> curves; - - curves.push_back("secp256r1"); - curves.push_back("brainpool512r1"); + curves.push_back("secp256r1"); + curves.push_back("brainpool512r1"); - for (auto &curve : curves) - { - PKCS11_ECDSA_KeyPair keypair = generate_ecdsa_keypair(test_session, curve, EC_DOMPAR_ENC_OID); + for(auto &curve : curves) + { + PKCS11_ECDSA_KeyPair keypair = generate_ecdsa_keypair(test_session, curve, EC_DOMPAR_ENC_OID); - keypair.first.destroy(); - keypair.second.destroy(); - } - result.test_success("ECDSA key pair generation was successful"); - } - catch (std::exception& e) - { - result.test_failure(e.what()); - } + keypair.first.destroy(); + keypair.second.destroy(); + } + result.test_success("ECDSA key pair generation was successful"); return result; } Test::Result test_ecdsa_sign_verify_core(EC_Group_Encoding ec_dompar_enc, std::string test_name) - { - Test::Result result(test_name); - - try - { - TestSession test_session(true); - std::vector<std::string> curves; + { + Test::Result result(test_name); + TestSession test_session(true); + std::vector<std::string> curves; - curves.push_back("secp256r1"); - curves.push_back("brainpool512r1"); - - for (auto &curve : curves) - { + curves.push_back("secp256r1"); + curves.push_back("brainpool512r1"); - // generate key pair - PKCS11_ECDSA_KeyPair keypair = generate_ecdsa_keypair(test_session, curve, ec_dompar_enc); + for(auto &curve : curves) + { + // generate key pair + PKCS11_ECDSA_KeyPair keypair = generate_ecdsa_keypair(test_session, curve, ec_dompar_enc); - std::vector<uint8_t> plaintext(20, 0x01); + std::vector<uint8_t> plaintext(20, 0x01); - auto sign_and_verify = [&keypair, &plaintext, &result](const std::string& emsa) - { + auto sign_and_verify = [&keypair, &plaintext, &result](const std::string& emsa) + { Botan::PK_Signer signer(keypair.second, Test::rng(), emsa, Botan::IEEE_1363); auto signature = signer.sign_message(plaintext, Test::rng()); @@ -1413,49 +1156,44 @@ Test::Result test_ecdsa_sign_verify_core(EC_Group_Encoding ec_dompar_enc, std::s result.test_eq("ECDSA PKCS11 verify (in software): " + emsa, soft_ecdsa_ok, true); #endif - }; + }; - sign_and_verify("Raw"); // SoftHSMv2 until now only supports "Raw" + sign_and_verify("Raw"); // SoftHSMv2 until now only supports "Raw" - keypair.first.destroy(); - keypair.second.destroy(); - } - } - catch (std::exception& e) - { - result.test_failure(e.what()); - } + keypair.first.destroy(); + keypair.second.destroy(); + } - return result; - } + return result; + } Test::Result test_ecdsa_sign_verify() - { - // pass the curve OID to the PKCS#11 library - return test_ecdsa_sign_verify_core(EC_DOMPAR_ENC_OID, "PKCS11 ECDSA sign and verify"); - } + { + // pass the curve OID to the PKCS#11 library + return test_ecdsa_sign_verify_core(EC_DOMPAR_ENC_OID, "PKCS11 ECDSA sign and verify"); + } Test::Result test_ecdsa_curve_import() - { - // pass the curve parameters to the PKCS#11 library and perform sign/verify to test them - return test_ecdsa_sign_verify_core(EC_DOMPAR_ENC_EXPLICIT, "PKCS11 ECDSA sign and verify with imported curve"); - } + { + // pass the curve parameters to the PKCS#11 library and perform sign/verify to test them + return test_ecdsa_sign_verify_core(EC_DOMPAR_ENC_EXPLICIT, "PKCS11 ECDSA sign and verify with imported curve"); + } class PKCS11_ECDSA_Tests final : public Test { public: std::vector<Test::Result> run() override { - std::vector<std::function<Test::Result()>> fns = + std::vector<std::pair<std::string, std::function<Test::Result()>>> fns = { - test_ecdsa_privkey_import, - test_ecdsa_privkey_export, - test_ecdsa_pubkey_import, - test_ecdsa_pubkey_export, - test_ecdsa_generate_private_key, - test_ecdsa_generate_keypair, - test_ecdsa_sign_verify, - test_ecdsa_curve_import + {STRING_AND_FUNCTION(test_ecdsa_privkey_import)}, + {STRING_AND_FUNCTION(test_ecdsa_privkey_export)}, + {STRING_AND_FUNCTION(test_ecdsa_pubkey_import)}, + {STRING_AND_FUNCTION(test_ecdsa_pubkey_export)}, + {STRING_AND_FUNCTION(test_ecdsa_generate_private_key)}, + {STRING_AND_FUNCTION(test_ecdsa_generate_keypair)}, + {STRING_AND_FUNCTION(test_ecdsa_sign_verify)}, + {STRING_AND_FUNCTION(test_ecdsa_curve_import)} }; return run_pkcs11_tests("PKCS11 ECDSA", fns); @@ -1474,34 +1212,26 @@ Test::Result test_ecdh_privkey_import() { Test::Result result("PKCS11 import ECDH private key"); - try - { - TestSession test_session(true); - - // create ecdh private key - ECDH_PrivateKey priv_key(Test::rng(), EC_Group("secp256r1")); - priv_key.set_parameter_encoding(EC_Group_Encoding::EC_DOMPAR_ENC_OID); + TestSession test_session(true); - // import to card - EC_PrivateKeyImportProperties props(priv_key.DER_domain(), priv_key.private_value()); - props.set_token(true); - props.set_private(true); - props.set_derive(true); + // create ecdh private key + ECDH_PrivateKey priv_key(Test::rng(), EC_Group("secp256r1")); + priv_key.set_parameter_encoding(EC_Group_Encoding::EC_DOMPAR_ENC_OID); - // label - std::string label = "Botan test ecdh key"; - props.set_label(label); + // import to card + EC_PrivateKeyImportProperties props(priv_key.DER_domain(), priv_key.private_value()); + props.set_token(true); + props.set_private(true); + props.set_derive(true); - PKCS11_ECDH_PrivateKey pk(test_session.session(), props); - result.test_success("ECDH private key import was successful"); + // label + std::string label = "Botan test ecdh key"; + props.set_label(label); - pk.destroy(); - } - catch (std::exception& e) - { - result.test_failure(e.what()); - } + PKCS11_ECDH_PrivateKey pk(test_session.session(), props); + result.test_success("ECDH private key import was successful"); + pk.destroy(); return result; } @@ -1509,37 +1239,29 @@ Test::Result test_ecdh_privkey_export() { Test::Result result("PKCS11 export ECDH private key"); - try - { - TestSession test_session(true); + TestSession test_session(true); - // create private key - ECDH_PrivateKey priv_key(Test::rng(), EC_Group("secp256r1")); - priv_key.set_parameter_encoding(EC_Group_Encoding::EC_DOMPAR_ENC_OID); + // create private key + ECDH_PrivateKey priv_key(Test::rng(), EC_Group("secp256r1")); + priv_key.set_parameter_encoding(EC_Group_Encoding::EC_DOMPAR_ENC_OID); - // import to card - EC_PrivateKeyImportProperties props(priv_key.DER_domain(), priv_key.private_value()); - props.set_token(true); - props.set_private(true); - props.set_derive(true); - props.set_extractable(true); + // import to card + EC_PrivateKeyImportProperties props(priv_key.DER_domain(), priv_key.private_value()); + props.set_token(true); + props.set_private(true); + props.set_derive(true); + props.set_extractable(true); - // label - std::string label = "Botan test ecdh key"; - props.set_label(label); + // label + std::string label = "Botan test ecdh key"; + props.set_label(label); - PKCS11_ECDH_PrivateKey pk(test_session.session(), props); + PKCS11_ECDH_PrivateKey pk(test_session.session(), props); - ECDH_PrivateKey exported = pk.export_key(); - result.test_success("ECDH private key export was successful"); - - pk.destroy(); - } - catch (std::exception& e) - { - result.test_failure(e.what()); - } + ECDH_PrivateKey exported = pk.export_key(); + result.test_success("ECDH private key export was successful"); + pk.destroy(); return result; } @@ -1547,38 +1269,30 @@ Test::Result test_ecdh_pubkey_import() { Test::Result result("PKCS11 import ECDH public key"); - try - { - TestSession test_session(true); + TestSession test_session(true); - // create ECDH private key - ECDH_PrivateKey priv_key(Test::rng(), EC_Group("secp256r1")); - priv_key.set_parameter_encoding(EC_Group_Encoding::EC_DOMPAR_ENC_OID); + // create ECDH private key + ECDH_PrivateKey priv_key(Test::rng(), EC_Group("secp256r1")); + priv_key.set_parameter_encoding(EC_Group_Encoding::EC_DOMPAR_ENC_OID); const std::vector<uint8_t> enc_point = DER_Encoder().encode( priv_key.public_point().encode(PointGFp::UNCOMPRESSED), OCTET_STRING). get_contents_unlocked(); - // import to card - EC_PublicKeyImportProperties props(priv_key.DER_domain(), enc_point); - props.set_token(true); - props.set_private(false); - props.set_derive(true); + // import to card + EC_PublicKeyImportProperties props(priv_key.DER_domain(), enc_point); + props.set_token(true); + props.set_private(false); + props.set_derive(true); - // label - std::string label = "Botan test ECDH pub key"; - props.set_label(label); + // label + std::string label = "Botan test ECDH pub key"; + props.set_label(label); - PKCS11_ECDH_PublicKey pk(test_session.session(), props); - result.test_success("ECDH public key import was successful"); - - pk.destroy(); - } - catch (std::exception& e) - { - result.test_failure(e.what()); - } + PKCS11_ECDH_PublicKey pk(test_session.session(), props); + result.test_success("ECDH public key import was successful"); + pk.destroy(); return result; } @@ -1586,39 +1300,32 @@ Test::Result test_ecdh_pubkey_export() { Test::Result result("PKCS11 export ECDH public key"); - try - { - TestSession test_session(true); + TestSession test_session(true); - // create public key from private key - ECDH_PrivateKey priv_key(Test::rng(), EC_Group("secp256r1")); - priv_key.set_parameter_encoding(EC_Group_Encoding::EC_DOMPAR_ENC_OID); + // create public key from private key + ECDH_PrivateKey priv_key(Test::rng(), EC_Group("secp256r1")); + priv_key.set_parameter_encoding(EC_Group_Encoding::EC_DOMPAR_ENC_OID); - const std::vector<uint8_t> enc_point = DER_Encoder().encode( - priv_key.public_point().encode(PointGFp::UNCOMPRESSED), OCTET_STRING). - get_contents_unlocked(); + const std::vector<uint8_t> enc_point = DER_Encoder().encode( + priv_key.public_point().encode(PointGFp::UNCOMPRESSED), OCTET_STRING). + get_contents_unlocked(); - // import to card - EC_PublicKeyImportProperties props(priv_key.DER_domain(), enc_point); - props.set_token(true); - props.set_derive(true); - props.set_private(false); + // import to card + EC_PublicKeyImportProperties props(priv_key.DER_domain(), enc_point); + props.set_token(true); + props.set_derive(true); + props.set_private(false); - // label - std::string label = "Botan test ECDH pub key"; - props.set_label(label); + // label + std::string label = "Botan test ECDH pub key"; + props.set_label(label); - PKCS11_ECDH_PublicKey pk(test_session.session(), props); + PKCS11_ECDH_PublicKey pk(test_session.session(), props); - ECDH_PublicKey exported = pk.export_key(); - result.test_success("ECDH public key export was successful"); + ECDH_PublicKey exported = pk.export_key(); + result.test_success("ECDH public key export was successful"); - pk.destroy(); - } - catch (std::exception& e) - { - result.test_failure(e.what()); - } + pk.destroy(); return result; } @@ -1626,26 +1333,18 @@ Test::Result test_ecdh_pubkey_export() Test::Result test_ecdh_generate_private_key() { Test::Result result("PKCS11 generate ECDH private key"); + TestSession test_session(true); - try - { - TestSession test_session(true); - - EC_PrivateKeyGenerationProperties props; - props.set_token(true); - props.set_private(true); - props.set_derive(true); + EC_PrivateKeyGenerationProperties props; + props.set_token(true); + props.set_private(true); + props.set_derive(true); - PKCS11_ECDH_PrivateKey pk(test_session.session(), - EC_Group("secp256r1").DER_encode(EC_Group_Encoding::EC_DOMPAR_ENC_OID), props); - result.test_success("ECDH private key generation was successful"); + PKCS11_ECDH_PrivateKey pk(test_session.session(), + EC_Group("secp256r1").DER_encode(EC_Group_Encoding::EC_DOMPAR_ENC_OID), props); + result.test_success("ECDH private key generation was successful"); - pk.destroy(); - } - catch (std::exception& e) - { - result.test_failure(e.what()); - } + pk.destroy(); return result; } @@ -1675,21 +1374,13 @@ PKCS11_ECDH_KeyPair generate_ecdh_keypair(const TestSession& test_session, const Test::Result test_ecdh_generate_keypair() { Test::Result result("PKCS11 generate ECDH key pair"); + TestSession test_session(true); - try - { - TestSession test_session(true); - - PKCS11_ECDH_KeyPair keypair = generate_ecdh_keypair(test_session, "Botan test ECDH key1"); - result.test_success("ECDH key pair generation was successful"); + PKCS11_ECDH_KeyPair keypair = generate_ecdh_keypair(test_session, "Botan test ECDH key1"); + result.test_success("ECDH key pair generation was successful"); - keypair.first.destroy(); - keypair.second.destroy(); - } - catch (std::exception& e) - { - result.test_failure(e.what()); - } + keypair.first.destroy(); + keypair.second.destroy(); return result; } @@ -1697,33 +1388,25 @@ Test::Result test_ecdh_generate_keypair() Test::Result test_ecdh_derive() { Test::Result result("PKCS11 ECDH derive"); + TestSession test_session(true); - try - { - TestSession test_session(true); - - PKCS11_ECDH_KeyPair keypair = generate_ecdh_keypair(test_session, "Botan test ECDH key1"); - PKCS11_ECDH_KeyPair keypair2 = generate_ecdh_keypair(test_session, "Botan test ECDH key2"); + PKCS11_ECDH_KeyPair keypair = generate_ecdh_keypair(test_session, "Botan test ECDH key1"); + PKCS11_ECDH_KeyPair keypair2 = generate_ecdh_keypair(test_session, "Botan test ECDH key2"); - // SoftHSMv2 only supports CKD_NULL KDF at the moment - Botan::PK_Key_Agreement ka(keypair.second, Test::rng(), "Raw"); - Botan::PK_Key_Agreement kb(keypair2.second, Test::rng(), "Raw"); + // SoftHSMv2 only supports CKD_NULL KDF at the moment + Botan::PK_Key_Agreement ka(keypair.second, Test::rng(), "Raw"); + Botan::PK_Key_Agreement kb(keypair2.second, Test::rng(), "Raw"); - Botan::SymmetricKey alice_key = ka.derive_key(32, keypair2.first.public_point().encode(PointGFp::UNCOMPRESSED)); - Botan::SymmetricKey bob_key = kb.derive_key(32, keypair.first.public_point().encode(PointGFp::UNCOMPRESSED)); + Botan::SymmetricKey alice_key = ka.derive_key(32, keypair2.first.public_point().encode(PointGFp::UNCOMPRESSED)); + Botan::SymmetricKey bob_key = kb.derive_key(32, keypair.first.public_point().encode(PointGFp::UNCOMPRESSED)); - bool eq = alice_key == bob_key; - result.test_eq("same secret key derived", eq, true); + bool eq = alice_key == bob_key; + result.test_eq("same secret key derived", eq, true); - keypair.first.destroy(); - keypair.second.destroy(); - keypair2.first.destroy(); - keypair2.second.destroy(); - } - catch (std::exception& e) - { - result.test_failure(e.what()); - } + keypair.first.destroy(); + keypair.second.destroy(); + keypair2.first.destroy(); + keypair2.second.destroy(); return result; } @@ -1733,15 +1416,15 @@ class PKCS11_ECDH_Tests final : public Test public: std::vector<Test::Result> run() override { - std::vector<std::function<Test::Result()>> fns = + std::vector<std::pair<std::string, std::function<Test::Result()>>> fns = { - test_ecdh_privkey_import, - test_ecdh_privkey_export, - test_ecdh_pubkey_import, - test_ecdh_pubkey_export, - test_ecdh_generate_private_key, - test_ecdh_generate_keypair, - test_ecdh_derive + {STRING_AND_FUNCTION(test_ecdh_privkey_import)}, + {STRING_AND_FUNCTION(test_ecdh_privkey_export)}, + {STRING_AND_FUNCTION(test_ecdh_pubkey_import)}, + {STRING_AND_FUNCTION(test_ecdh_pubkey_export)}, + {STRING_AND_FUNCTION(test_ecdh_generate_private_key)}, + {STRING_AND_FUNCTION(test_ecdh_generate_keypair)}, + {STRING_AND_FUNCTION(test_ecdh_derive)} }; return run_pkcs11_tests("PKCS11 ECDH", fns); @@ -1757,22 +1440,14 @@ BOTAN_REGISTER_TEST("pkcs11-ecdh", PKCS11_ECDH_Tests); Test::Result test_rng_generate_random() { Test::Result result("PKCS11 RNG generate random"); + TestSession test_session(true); - try - { - TestSession test_session(true); - - PKCS11_RNG rng(test_session.session()); - result.confirm("RNG already seeded", rng.is_seeded()); + PKCS11_RNG rng(test_session.session()); + result.confirm("RNG already seeded", rng.is_seeded()); - std::vector<uint8_t> random(20); - rng.randomize(random.data(), random.size()); - result.test_ne("random data generated", random, std::vector<uint8_t>(20)); - } - catch (std::exception& e) - { - result.test_failure(e.what()); - } + std::vector<uint8_t> random(20); + rng.randomize(random.data(), random.size()); + result.test_ne("random data generated", random, std::vector<uint8_t>(20)); return result; } @@ -1780,29 +1455,21 @@ Test::Result test_rng_generate_random() Test::Result test_rng_add_entropy() { Test::Result result("PKCS11 RNG add entropy random"); + TestSession test_session(true); - try - { - TestSession test_session(true); - - PKCS11_RNG rng(test_session.session()); + PKCS11_RNG rng(test_session.session()); - result.confirm("RNG already seeded", rng.is_seeded()); - rng.clear(); - result.confirm("RNG ignores call to clear", rng.is_seeded()); + result.confirm("RNG already seeded", rng.is_seeded()); + rng.clear(); + result.confirm("RNG ignores call to clear", rng.is_seeded()); - result.test_eq("RNG ignores calls to reseed", - rng.reseed(Botan::Entropy_Sources::global_sources(), 256, std::chrono::milliseconds(300)), - 0); + result.test_eq("RNG ignores calls to reseed", + rng.reseed(Botan::Entropy_Sources::global_sources(), 256, std::chrono::milliseconds(300)), + 0); - auto random = Test::rng().random_vec(20); - rng.add_entropy(random.data(), random.size()); - result.test_success("entropy added"); - } - catch (std::exception& e) - { - result.test_failure(e.what()); - } + auto random = Test::rng().random_vec(20); + rng.add_entropy(random.data(), random.size()); + result.test_success("entropy added"); return result; } @@ -1812,30 +1479,22 @@ Test::Result test_rng_add_entropy() Test::Result test_pkcs11_hmac_drbg() { Test::Result result("PKCS11 HMAC_DRBG using PKCS11_RNG"); + TestSession test_session(true); - try - { - TestSession test_session(true); - - PKCS11_RNG p11_rng(test_session.session()); - HMAC_DRBG drbg(MessageAuthenticationCode::create("HMAC(SHA-512)"), p11_rng); - // result.test_success("HMAC_DRBG(HMAC(SHA512)) instantiated with PKCS11_RNG"); + PKCS11_RNG p11_rng(test_session.session()); + HMAC_DRBG drbg(MessageAuthenticationCode::create("HMAC(SHA-512)"), p11_rng); + // result.test_success("HMAC_DRBG(HMAC(SHA512)) instantiated with PKCS11_RNG"); - result.test_eq("HMAC_DRBG is not seeded yet.", drbg.is_seeded(), false); - secure_vector<uint8_t> rnd = drbg.random_vec(64); - result.test_eq("HMAC_DRBG is seeded now", drbg.is_seeded(), true); + result.test_eq("HMAC_DRBG is not seeded yet.", drbg.is_seeded(), false); + secure_vector<uint8_t> rnd = drbg.random_vec(64); + result.test_eq("HMAC_DRBG is seeded now", drbg.is_seeded(), true); - std::string personalization_string = "Botan PKCS#11 Tests"; - std::vector<uint8_t> personalization_data(personalization_string.begin(), personalization_string.end()); - drbg.add_entropy(personalization_data.data(), personalization_data.size()); + std::string personalization_string = "Botan PKCS#11 Tests"; + std::vector<uint8_t> personalization_data(personalization_string.begin(), personalization_string.end()); + drbg.add_entropy(personalization_data.data(), personalization_data.size()); - auto rnd_vec = drbg.random_vec(256); - result.test_ne("HMAC_DRBG generated a random vector", rnd_vec, std::vector<uint8_t>(256)); - } - catch (std::exception& e) - { - result.test_failure(e.what()); - } + auto rnd_vec = drbg.random_vec(256); + result.test_ne("HMAC_DRBG generated a random vector", rnd_vec, std::vector<uint8_t>(256)); return result; } @@ -1846,12 +1505,12 @@ class PKCS11_RNG_Tests final : public Test public: std::vector<Test::Result> run() override { - std::vector<std::function<Test::Result()>> fns = + std::vector<std::pair<std::string, std::function<Test::Result()>>> fns = { - test_rng_generate_random - , test_rng_add_entropy -#if defined(BOTAN_HAS_HMAC_DRBG)&& defined(BOTAN_HAS_SHA2_64) - , test_pkcs11_hmac_drbg + {STRING_AND_FUNCTION(test_rng_generate_random)} + , {STRING_AND_FUNCTION(test_rng_add_entropy)} +#if defined(BOTAN_HAS_HMAC_DRBG )&& defined(BOTAN_HAS_SHA2_64) + , {STRING_AND_FUNCTION(test_pkcs11_hmac_drbg)} #endif }; @@ -1867,22 +1526,15 @@ Test::Result test_set_pin() { Test::Result result("PKCS11 set pin"); - try - { - Module module(Test::pkcs11_lib()); - std::vector<SlotId> slot_vec = Slot::get_available_slots(module, true); - Slot slot(module, slot_vec.at(0)); + Module module(Test::pkcs11_lib()); + std::vector<SlotId> slot_vec = Slot::get_available_slots(module, true); + Slot slot(module, slot_vec.at(0)); - PKCS11::set_pin(slot, SO_PIN(), TEST_PIN()); - result.test_success("PIN set with SO_PIN to TEST_PIN"); + PKCS11::set_pin(slot, SO_PIN(), TEST_PIN()); + result.test_success("PIN set with SO_PIN to TEST_PIN"); - PKCS11::set_pin(slot, SO_PIN(), PIN()); - result.test_success("PIN changed back with SO_PIN"); - } - catch (std::exception& e) - { - result.test_failure(e.what()); - } + PKCS11::set_pin(slot, SO_PIN(), PIN()); + result.test_success("PIN changed back with SO_PIN"); return result; } @@ -1891,19 +1543,12 @@ Test::Result test_initialize() { Test::Result result("PKCS11 initialize token"); - try - { - Module module(Test::pkcs11_lib()); - std::vector<SlotId> slot_vec = Slot::get_available_slots(module, true); - Slot slot(module, slot_vec.at(0)); + Module module(Test::pkcs11_lib()); + std::vector<SlotId> slot_vec = Slot::get_available_slots(module, true); + Slot slot(module, slot_vec.at(0)); - PKCS11::initialize_token(slot, "Botan PKCS#11 tests", SO_PIN(), PIN()); - result.test_success("token initialized"); - } - catch (std::exception& e) - { - result.test_failure(e.what()); - } + PKCS11::initialize_token(slot, "Botan PKCS#11 tests", SO_PIN(), PIN()); + result.test_success("token initialized"); return result; } @@ -1912,22 +1557,15 @@ Test::Result test_change_pin() { Test::Result result("PKCS11 change pin"); - try - { - Module module(Test::pkcs11_lib()); - std::vector<SlotId> slot_vec = Slot::get_available_slots(module, true); - Slot slot(module, slot_vec.at(0)); + Module module(Test::pkcs11_lib()); + std::vector<SlotId> slot_vec = Slot::get_available_slots(module, true); + Slot slot(module, slot_vec.at(0)); - PKCS11::change_pin(slot, PIN(), TEST_PIN()); - result.test_success("PIN changed with PIN to TEST_PIN"); + PKCS11::change_pin(slot, PIN(), TEST_PIN()); + result.test_success("PIN changed with PIN to TEST_PIN"); - PKCS11::change_pin(slot, TEST_PIN(), PIN()); - result.test_success("PIN changed back with TEST_PIN to PIN"); - } - catch (std::exception& e) - { - result.test_failure(e.what()); - } + PKCS11::change_pin(slot, TEST_PIN(), PIN()); + result.test_success("PIN changed back with TEST_PIN to PIN"); return result; } @@ -1936,22 +1574,15 @@ Test::Result test_change_so_pin() { Test::Result result("PKCS11 change so_pin"); - try - { - Module module(Test::pkcs11_lib()); - std::vector<SlotId> slot_vec = Slot::get_available_slots(module, true); - Slot slot(module, slot_vec.at(0)); + Module module(Test::pkcs11_lib()); + std::vector<SlotId> slot_vec = Slot::get_available_slots(module, true); + Slot slot(module, slot_vec.at(0)); - PKCS11::change_so_pin(slot, SO_PIN(), TEST_SO_PIN()); - result.test_success("SO_PIN changed with SO_PIN to TEST_SO_PIN"); + PKCS11::change_so_pin(slot, SO_PIN(), TEST_SO_PIN()); + result.test_success("SO_PIN changed with SO_PIN to TEST_SO_PIN"); - PKCS11::change_so_pin(slot, TEST_SO_PIN(), SO_PIN()); - result.test_success("SO_PIN changed back with TEST_SO_PIN to SO_PIN"); - } - catch (std::exception& e) - { - result.test_failure(e.what()); - } + PKCS11::change_so_pin(slot, TEST_SO_PIN(), SO_PIN()); + result.test_success("SO_PIN changed back with TEST_SO_PIN to SO_PIN"); return result; } @@ -1961,12 +1592,12 @@ class PKCS11_Token_Management_Tests final : public Test public: std::vector<Test::Result> run() override { - std::vector<std::function<Test::Result()>> fns = + std::vector<std::pair<std::string, std::function<Test::Result()>>> fns = { - test_set_pin, - test_initialize, - test_change_pin, - test_change_so_pin + {STRING_AND_FUNCTION(test_set_pin)}, + {STRING_AND_FUNCTION(test_initialize)}, + {STRING_AND_FUNCTION(test_change_pin)}, + {STRING_AND_FUNCTION(test_change_so_pin)} }; return run_pkcs11_tests("PKCS11 token management", fns); @@ -1984,28 +1615,21 @@ Test::Result test_x509_import() Test::Result result("PKCS11 X509 cert import"); #if defined(BOTAN_TARGET_OS_HAS_FILESYSTEM) - try - { - TestSession test_session(true); + TestSession test_session(true); - X509_Certificate root(Test::data_file("x509/nist/test01/end.crt")); - X509_CertificateProperties props(DER_Encoder().encode(root.subject_dn()).get_contents_unlocked(), root.BER_encode()); - props.set_label("Botan PKCS#11 test certificate"); - props.set_private(false); - props.set_token(true); + X509_Certificate root(Test::data_file("x509/nist/test01/end.crt")); + X509_CertificateProperties props(DER_Encoder().encode(root.subject_dn()).get_contents_unlocked(), root.BER_encode()); + props.set_label("Botan PKCS#11 test certificate"); + props.set_private(false); + props.set_token(true); - PKCS11_X509_Certificate pkcs11_cert(test_session.session(), props); - result.test_success("X509 certificate imported"); + PKCS11_X509_Certificate pkcs11_cert(test_session.session(), props); + result.test_success("X509 certificate imported"); - PKCS11_X509_Certificate pkcs11_cert2(test_session.session(), pkcs11_cert.handle()); - result.test_eq("X509 certificate by handle", pkcs11_cert == pkcs11_cert2, true); + PKCS11_X509_Certificate pkcs11_cert2(test_session.session(), pkcs11_cert.handle()); + result.test_eq("X509 certificate by handle", pkcs11_cert == pkcs11_cert2, true); - pkcs11_cert.destroy(); - } - catch (std::exception& e) - { - result.test_failure(e.what()); - } + pkcs11_cert.destroy(); #endif return result; @@ -2016,9 +1640,9 @@ class PKCS11_X509_Tests final : public Test public: std::vector<Test::Result> run() override { - std::vector<std::function<Test::Result()>> fns = + std::vector<std::pair<std::string, std::function<Test::Result()>>> fns = { - test_x509_import + {STRING_AND_FUNCTION(test_x509_import)} }; return run_pkcs11_tests("PKCS11 X509", fns); |